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AMENDMENTS TO THE CLAIMS: 

Please amend claims 1 and 20 as follows. 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1. (currently amended) A method of controlling a monitoring function of a processor, 
said processor being operable in at least two domains, comprising a first domain and a second 
domain, said first and second domains each comprising at least one mode, said method 
comprising the steps of: 

controllably monitoring said processor operating in each of said at least two domains, 

setting at least one control value to an enable value, said at least one control value 
relating to a condition, said condition comprisin g consisting of a respective one of £a)_a domain 
that said processor is operating in. or (b) a mode that said processor is operating in or (c) to a 
type of said monitoring function, said control value being set to be an enable value for said 
related condition to indicate that said monitoring function is allowable in said first domain; 

allowing initiation of said monitoring function in said first domain when said condition is 
present if its related control value is set to said enable value and thereby indicates that said 
monitoring function is allowable; and 

not allowing initiation of said monitoring function in said first domain when said 
condition is present and its related control value is not set to said enable value and thereby 
indicates that said monitoring function is not allowable. 
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2. (original) A method according to claim 1, wherein said first domain is a secure domain 
and said second domain is a non-secure domain, said processor being operable such that when 
executing a program in a secure mode within said secure domain said program has access to 
secure data which is not accessible when said processor is operating in a non-secure mode 
within said non-secure domain. 

3. (cancelled). 

4. (previously presented) A method according to claim 2, wherein said condition 
comprises a secure domain and said control value comprises a secure domain enable value, 
initiation of monitoring in said secure domain only being allowed if said secure domain enable 
value is set. 

5. (previously presented) A method according to claim 2, wherein said secure domain 
includes a secure user mode and said condition comprises a secure user mode. 

6. (original) A method according to claim 5 wherein said control value comprises a 
secure user mode enable bit and initiation of monitoring from secure user mode is only allowed 
if said secure user mode enable bit has been set. 

7. (original) A method according to claim 4, wherein said condition comprises a type of 
monitoring function. 
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8. (original) A method according to claim 7 5 wherein said condition comprises a debug 
monitoring function and said control value comprises a debug enable bit, initiation of debug in 
said first domain only being allowable if said debug enable bit has been set. 

9. (original) A method according to claim 8, wherein said condition comprises a trace 
monitoring function and said control value comprises a trace enable bit, initiation of trace in said 
first domain only being allowable if said control trace enable bit has been set. 

1 0. (original) A method according to claim 9, wherein said secure domain enable value 
comprises a secure debug enable bit and a secure trace enable bit, initiation of debug and trace in 
said secure domain only being allowable if respective portions of said secure domain enable 
value are set. 

1 1 (original) A method according to claim 1, said method comprising setting a plurality 
of control values, each of said plurality of control values relating to a different condition; and 

only allowing initiation of said monitoring function in said first domain if any of said 
conditions are present if each of said control values related to a condition that is present indicate 
that said monitoring function is allowable. 

12. (original) A method according to claim 1, said method further comprising said steps 

of: 

setting a control indicator, said control indicator indicating that monitoring is only 
allowable for specified applications; and 
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prior to initialising said monitoring function checking an application identifier; and 
only allowing initiation of said monitoring function if said application currently running 
is one for which monitoring is allowable. 

13. (original) A method according to claim 12, wherein the step of setting a control 
indicator comprises setting a control indicator stored in a predetermined position in a storage 
element. 

14. (original) A method according to claim 12, wherein said monitoring function 
comprises monitoring said processor and capturing diagnostic data, said method comprising the 
further step of: 

following initiation of said monitoring function only allowing capturing of diagnostic 
data in said first domain while an application running on said processor is one for which 
monitoring is allowable. 

15. (original) A method according to claim 1, wherein said monitoring function 
comprises monitoring said processor and capturing diagnostic data, said method comprising the 
further step of: 

following initiation of said monitoring function only allowing capturing of diagnostic 
data in said first domain when a condition changes if a control value related to the changed 
condition indicates that said monitoring function is allowable. 
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16. (original) A method according to claim 1, wherein setting of at least one control value 
is performed either by setting said control value via an input port or by setting said control value 
from the first domain. 

17. (original) A method according to claim 16, said method comprising the further step of 
blocking write access to said control value via said input port such that the step of setting said 
control value can henceforth only be performed by setting said control value from said first 
domain. 

18. (original) A method according to claim 1, wherein said first domain comprises a first 
user mode and a first privileged mode and the step of setting at least one control value in said 
first domain, comprises setting said control value from said first privileged mode. 

19. (original) A method according to claim 16, wherein said first domain comprises a first 
user mode and a first privileged mode and said step of setting at least one control value in the 
first domain, comprises inputting an authentication code from a mode that is not a first privileged 
mode and then setting said control value. 

20. (currently amended) A processor operable in a first domain and a second domain said 
first and second domains each comprising at least one mode, said processor comprising: 

monitoring logic for controllably monitoring said processor operating in each of said first 
and second domains; 
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a storage element configured to be set to contain at least one control value, said at least 
one control value relating to a condition, said condition comprisin g consisting of a respective one 
of (a) a domain that said processor is operating in, or (b) a mode that said processor is operating 
in or (c) te-a type of said monitoring function, said control value comprising an enable value for 
said related condition, said enable value indicating that operation of said monitoring logic is 
allowable in said first domain; and 

control logic configured to control initiation of said monitoring logic and for allowing 
initiation of said monitoring logic in said first domain when said condition is present if its related 
control value is set to said enable value and thereby indicates that operation of said monitoring 
logic is allowable, and for not allowing initiation of said monitoring function in said first domain 
when said condition is present and its related control value is not set to said enable value and 
thereby indicates that operation of said monitoring logic is not allowable. 

21. (original) A processor according to claim 20, wherein said first domain is a secure 
domain and said second domain is a non-secure domain said processor being operable such that 
when executing a program in a secure mode within said secure domain said program has access 
to secure data which is not accessible when said processor is operating in a non-secure mode 
within said non-secure domain. 

22. (cancelled). 

23. (previously presented) A processor according to claim 21, wherein said condition 
comprises a secure domain and said control value comprises a secure domain enable bit, 



-7- 



1539027 



WATT et al 

Appl. No. 10/714,483 

October 29, 2009 



initiation of monitoring in said secure domain only being allowed if said storage element 
contains a secure domain enable bit. 

24. (previously presented) A processor according to claim 21, wherein said secure 
domain includes a secure user mode and said condition comprises a secure user mode. 

25. (original) A processor according to claim 24 wherein said control value comprises a 
secure user mode enable bit and said control logic is operable to allow initiation of said 
monitoring logic from secure user mode only when said storage element contains a secure user 
mode enable bit. 

26. (original) A processor according to claim 21, wherein said condition comprises a type 
of monitoring function. 

27. (original) A processor according to claim 26, wherein said condition comprises debug 
monitoring and the control value comprises a debug enable bit, said control logic being operable 
to allow initiation of said monitoring logic in said first domain only when the storage element 
contains a debug enable bit. 

28. (original) A processor according to claim 26, wherein said condition comprises trace 
monitoring and said control value comprises a trace enable bit, said control logic being operable 
to allow initiation of said trace logic in said first domain only when said storage element contains 
a control trace enable bit. 
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29. (original) A processor according to claim 20, wherein: 

said storage element is operable to contain a plurality of control values, each of said 
plurality of control values relating to a different condition; and 

said control logic is operable to only allow initiation of said monitoring logic in said first 
domain if any of said conditions are present if each of the control values related to a condition 
that is present indicate that the monitoring logic is allowable. 

30. (original) A processor according to claim 29 wherein one condition comprises a 
secure domain and a corresponding control value comprises a secure domain enable bit and a 
further condition comprises a secure user mode and a corresponding control value comprises a 
secure user mode enable bit, said control logic being operable to initiate said monitoring logic 
from secure user mode only when said storage element contains both a secure user mode enable 
bit and a secure domain enable bit. 

31. (original) A processor according to claim 20, wherein: 

said storage element is further operable to contain a control indicator, said control 
indicator indicating that monitoring is only allowable for identified applications; and 

said control logic is operable to check at least one identifier identifying an application 
that is allowable, said control logic only initiating said monitoring logic in the first domain when 
said application currently running is one identified as being one for which monitoring is 
allowable. 
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32. (original) A processor according to claim 31, said processor comprising a further 
storage element, said storage element being operable to contain said at least one identifier 
specifying an application that is allowable. 

33. (original) A processor according to claim 31, wherein said monitoring logic is 
operable to monitor the processor and capture diagnostic data; and 

wherein said control logic is operable to control the monitoring logic to suppress 
capturing of diagnostic data in said first domain when said control logic detects that said 
application running is not one identified as being allowable. 

34. (original) A processor according to claim 20, said processor further comprising an 
input port, wherein said control value is operable to be set in said storage element either via the 
input port or via an input from said first domain. 

35. (original) A processor according to claim 34, said processor comprising a means of 
blocking write access to said control value via said input port such that setting of said control 
value can henceforth only be performed by setting said control value via an input from said first 
domain. 

36. (original) A processor according to claim 20, wherein said first domain comprises a 
first user mode and a first privileged mode and said control value is operable to be set in said 
storage element via an input from said first privileged mode. 
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37. (original) A processor according to claim 35, wherein said first domain comprises a 
first user mode and a first privileged mode and said control value is operable to be set in said 
storage element by input of an authentication code from a mode that is not a first privileged 
mode followed by an input of said control value. 

38. (original) A processor according to claim 20, wherein said storage element comprises 
a register. 

39. (original) A processor according to claim 30, wherein said further storage element 
comprises a register. 
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